Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/arolSNGX_NSyHpWmWmW9TFU63DU.roa
File: arolSNGX_NSyHpWmWmW9TFU63DU.roa (raw, json)
Hash identifier: sPmw3AJKJJ3ZCHbS2RoQ1NefR6p5JKe3UCPIiFv1jLs=
Subject key identifier: 6A:BA:25:48:D1:97:FC:D4:B2:1E:95:A6:5A:65:BD:4C:55:3A:DC:35
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019029F9CAA37EA8518E2EC2A63A55862E6D
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/arolSNGX_NSyHpWmWmW9TFU63DU.roa
Signing time: Tue 18 Jun 2024 06:12:34 +0000
ROA not before: Tue 18 Jun 2024 06:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 18 Jun 2024 07:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:29:f9:ca:a3:7e:a8:51:8e:2e:c2:a6:3a:55:86:2e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 18 06:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6aba2548d197fcd4b21e95a65a65bd4c553adc35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:14:38:7c:14:f5:4b:c6:64:d7:42:75:94:90:
4f:5f:a8:62:71:63:56:02:80:0a:58:8c:66:b3:0f:
7c:72:a9:ea:ff:01:cc:46:8b:0c:41:ff:bb:21:61:
de:fd:e3:1c:1c:a6:25:d2:aa:f9:ac:73:90:df:37:
bb:c8:8b:a2:7a:e4:58:42:20:6d:63:33:34:03:ad:
4e:e1:a9:4a:49:4c:c1:ce:bc:46:3f:b1:c8:32:4e:
9a:ee:90:d8:e8:3e:d2:8f:71:04:b7:cc:6f:6d:51:
68:48:c4:0c:76:be:92:5a:fb:51:f5:7c:41:8d:a5:
9d:8f:4b:9a:67:f8:e3:dc:2e:6a:12:e8:56:16:09:
9a:a6:06:08:78:ae:b5:dc:47:3c:b8:29:b7:a6:d8:
1d:90:23:23:b9:00:7f:a2:b7:41:d4:e4:a2:6a:bf:
71:a8:df:de:e8:ad:12:63:df:68:42:62:d9:9d:c7:
66:d6:74:5f:8d:39:aa:bc:3c:53:74:c8:13:20:d7:
80:13:0f:aa:a0:be:0f:0a:58:a9:1c:73:66:43:2e:
b0:d0:aa:53:fc:ba:3e:53:b2:66:61:3a:62:d8:5c:
d5:00:d1:31:a9:0d:57:34:17:d5:87:86:7b:7c:f2:
3f:0a:92:ef:03:e1:b4:28:38:5c:53:0a:44:0f:bd:
af:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:BA:25:48:D1:97:FC:D4:B2:1E:95:A6:5A:65:BD:4C:55:3A:DC:35
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/arolSNGX_NSyHpWmWmW9TFU63DU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
33:48:88:a5:13:38:c8:bb:97:45:92:ee:dc:5d:3b:a5:93:07:
31:71:04:c5:0e:05:77:b7:4b:4c:71:08:d7:1a:bc:50:c5:8f:
0c:4f:26:a5:53:a3:10:9c:2b:0c:10:60:c0:2f:a4:4c:9b:c3:
a3:e9:6d:18:53:5c:bb:89:89:b0:cf:e5:c1:f0:65:50:f4:48:
d0:df:44:2c:1a:eb:50:05:ed:bd:de:20:51:f4:e4:8f:c1:15:
01:00:7c:35:8c:6c:3d:2b:34:f2:c4:83:0e:04:f8:17:4b:0e:
23:c9:3c:34:51:d6:6e:85:a2:ef:f1:ad:cd:ef:74:4f:c7:4a:
f4:4b:05:c0:2d:05:2c:7a:55:b5:07:8a:f9:84:28:2d:1a:39:
fb:4f:2c:a1:d6:0e:1d:b8:b2:ea:99:10:1d:64:50:34:39:f3:
ee:d6:9b:81:f8:d9:7e:65:6f:63:cd:2c:5e:a7:ef:ad:02:cb:
e7:57:24:be:24:40:33:2d:3a:f8:4e:1d:ab:13:2e:de:04:2a:
65:b1:49:71:fb:bf:b5:68:32:9e:23:22:69:28:3c:40:b2:ca:
e4:44:22:b2:fc:c3:33:37:c2:32:f8:ed:b7:0c:89:43:d4:cc:
76:9a:57:6b:d1:80:f1:11:6b:b9:fb:95:bd:4c:04:fc:e8:e6:
95:cf:8c:cb
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZAp+cqjfqhRji7CpjpVhi5tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjE4MDYxMjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWJhMjU0OGQxOTdmY2Q0YjIxZTk1YTY1YTY1YmQ0YzU1M2FkYzM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxQ4fBT1S8Zk10J1lJBPX6hicWNW
AoAKWIxmsw98cqnq/wHMRosMQf+7IWHe/eMcHKYl0qr5rHOQ3ze7yIuieuRYQiBt
YzM0A61O4alKSUzBzrxGP7HIMk6a7pDY6D7Sj3EEt8xvbVFoSMQMdr6SWvtR9XxB
jaWdj0uaZ/jj3C5qEuhWFgmapgYIeK613Ec8uCm3ptgdkCMjuQB/ordB1OSiar9x
qN/e6K0SY99oQmLZncdm1nRfjTmqvDxTdMgTINeAEw+qoL4PClipHHNmQy6w0KpT
/Lo+U7JmYTpi2FzVANExqQ1XNBfVh4Z7fPI/CpLvA+G0KDhcUwpED72v8wIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGq6JUjRl/zUsh6VplplvUxVOtw1MB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvYXJvbFNOR1hfTlN5SHBXbVdtVzlURlU2M0RVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBADNIiKUTOMi7l0WS7txd
O6WTBzFxBMUOBXe3S0xxCNcavFDFjwxPJqVToxCcKwwQYMAvpEybw6PpbRhTXLuJ
ibDP5cHwZVD0SNDfRCwa61AF7b3eIFH05I/BFQEAfDWMbD0rNPLEgw4E+BdLDiPJ
PDRR1m6Fou/xrc3vdE/HSvRLBcAtBSx6VbUHivmEKC0aOftPLKHWDh24suqZEB1k
UDQ58+7Wm4H42X5lb2PNLF6n760Cy+dXJL4kQDMtOvhOHasTLt4EKmWxSXH7v7Vo
Mp4jImkoPECyyuREIrL8wzM3wjL47bcMiUPUzHaaV2vRgPERa7n7lb1MBPzo5pXP
jMs=
-----END CERTIFICATE-----
Generated at Tue Jun 18 11:00:37 2024 by rpki-client on console-fra.rpki-client.org